Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
discourse/config
History
David Taylor 4c9ca24ccf
FEATURE: Hash API keys in the database (#8438) 
API keys are now only visible when first created. After that, only the first four characters are stored in the database for identification, along with an sha256 hash of the full key. This makes key usage easier to audit, and ensures attackers would not have access to the live site in the event of a database leak.

This makes the merge lower risk, because we have some time to revert if needed. Once the change is confirmed to be working, we will add a second commit to drop the `key` column.
 		2019-12-12 11:45:00 +00:00
..
cloud/cloud66 DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
environments DEV: Support custom log level in dev 2019-12-06 10:57:10 -05:00
initializers REFACTOR: do `X-Frame-Options` header removal in application controller. 2019-12-06 18:25:32 +05:30
locales FEATURE: Hash API keys in the database (#8438) 2019-12-12 11:45:00 +00:00
application.rb DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
boot.rb DEV: Remove logging when redis is terminated 2019-06-21 10:31:48 +01:00
cdn.yml.sample
database.yml DEV: Make setting up of multisite DB in test env clearer. 2019-03-21 09:58:07 +08:00
deploy.rb.sample enough with the malloc limit, not needed 2016-05-25 21:09:07 +10:00
discourse.config.sample enough with the malloc limit, not needed 2016-05-25 21:09:07 +10:00
discourse.pill.sample
discourse_defaults.conf DEV: Remove new_version_emails global setting reference 2019-11-20 15:54:09 +00:00
environment.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
logrotate.conf
multisite.yml.production-sample
nginx.global.conf
nginx.sample.conf Revert "FEATURE: Normalize the service worker route (#8359)" 2019-11-20 14:10:17 -08:00
projections.json
puma.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
routes.rb Improving bookmarks part 1 (#8466) 2019-12-11 14:04:02 +10:00
sidekiq.yml FEATURE: introduce ultra_low priority queue 2019-01-17 14:53:19 +11:00
site_settings.yml Improving bookmarks part 1 (#8466) 2019-12-11 14:04:02 +10:00
spring.rb DEV: enable frozen string literal on all files 2019-05-13 09:31:32 +08:00
thin.yml.sample
unicorn.conf.rb DEV: s/\$redis/Discourse\.redis (#8431) 2019-12-03 10:05:53 +01:00
unicorn_launcher FIX: Increase timeout when trying to reload unicorn. 2018-12-04 13:43:14 +08:00
unicorn_upstart.conf enough with the malloc limit, not needed 2016-05-25 21:09:07 +10:00